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(54) Method and apparatus to counter the rogue shell threat by means of local key derivation 



(57) The invention concerns countering a rogue 
shell threat In a cellular mobile communication system 
by an apparatus or a method for authentication in a mo- 
bile communication system comprising a mobile com- 
munication network (VLR/SGSN/HLR/RNC.) and mo- 
bile stations (MS) 

wherein the network provides a service to a mobile 
station (MS) after authentication of the mobile sta- 
tion wherein the mobile station (MS) comprises a 
portable module (USIM) 

wherein the mobile station (MS) comprises a mobile 
equipment (ME) that Is able to communicate with 
the network and that is able to communicate with 
the portable module (USIM) wherein the network 
sends random data (RAND) to the mobile station 
(MS) 

wherein the network (AUC.SGSN) calculates re- 
sponse data (XRES (i)) and key data (CK,IK) at 
least from the random data (RAND) and/or from a 
key (K) stored in the network (AUC/HLR) 
wherein the portable module (USIM) of the mobile 
station (MS) calculates response data (RES (i)) and 
key data (CK.IK) at least from the random data 
(RAND) and/or from a key (K) stored in the portable 
module (USIM) 

wherein the portable module (USIM) stores the cal- 
culated key data (CK.IK) 

wherein the portable module (USIM) transmits the 
response data (RES) to the mobile equipment (ME) 
which (ME) sends response data (RES) to the net- 
work 

wherein the portable module cateulates further key 
data (CSKJSK) from random data (RAND) and/or 
from the calculated key data (CK,IK). 
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Description 

[0001 ] A problem in communications systems in gen- 
eral is to make sure that only those parties authorised 
to use the resources of the communications system can 5 
actuaily use it. In this context, it is crucial to authenticate 
a communicating party, i.e. to corroborate the identity of 
the party by means of entity authentication. The corrob- 
orated identity may then be used in an access control 
mechanism (e.g. an access control list) to check which 
resources the party is authorised to use. 
[0002] (f the communication channel may be as- 
sumed to be secure (e.g. a fixed telephone line) then 
entity authentication may suff k:e to assure a party of an- 
other party's identity over the duration of a communica- 
tion session. If, however, the communication channel 
may not be assumed to be secure (e.g. a mobile radio 
link or a link in the Intemet) then an attacker could po- 
tentially "hijack" the channel, i.e. start to use the channel 
instead of the authorised party, without the other party 
noticing, after the completion of the entity authentication 
procedure. 

[0003] Consequently, in the case of an Insecure oom- 
munk»tlon channel additional security measures are 
needed for continued assurance of a communicating 
party's identity during the session. Such additional se- 
curity measures are the derivation of cryptographic ses- 
sion keys in conjunction with entity authentk»tion and 
the use of these session keys in cryptographs algo- 
rithms to provide confidentiality and/or integrity protec- 
tk>n of the communication channel. Confidentiality en- 
sures that no unauthorised party can eavesdrop on the 
communication, and Integrity ensures that no unauthor- 
ised party can modify the communication unnoticed. 
The commun Keating party's identity during the session 
is then continually assured by the use of the session 
keys. This holds under the assumptton that only the au- 
thorised party can know the session keys. 
[0004] This assumption depends on several factors, 
among them most prominently the strength and secure 
storage and execution of cryptographic algorithms and 
the secure storage of cryptographic keys. 
[0005] The present invention applies to a situation 
where a communk:ating party, called the user, uses a 
communication devtee which consists of two compo- 
nents: a communication temriinal and a user security 
module. The latter is a personal security device associ- 
ated with the user which, among other functions. Is used 
to store long-tenm cryptographic keys and store and ex- 
ecute cryptographic algorithms. To protect these cryp- 
tographs keys and algorithms, the user security module 
is typically implemented on a tamper-resistant hardware 
module. The communteation terminal, on the other 
hand, enjoys only a considerably tower degree of pro- 
tectton against tampering. It is not permanently associ- 
ated with a particular user. In the situation to which the 
inventton applies the user security module is removable 
from the communication terminal and may be inserted 



in another communication temninal, making the second 
communk^tion terminal the personal terminal of the us- 
er as long as the user security module remains inserted. 
Examples of such user security modules are the SIM 
module in GSM, the USIM module in Uiy^TS and the WIM 
module in WAP. Examples of such communk:ation ter- 
minals are the Mobile Equipment (ME) In GSM and 
UMTS and communication terminals supporting WAP. 
[0006] In the situation to whtoh the invention applies 
the cryptographic session keys used for confidentiality 
and/or integrity are derived jointly with entity authenti- 
cation from one (or more) long-temi cryptographic key 
(s) stored on the user security module. This session key 
derivation process can only be successfully periomned 
tjy the user security module. The derived session keys 
are then transferred from the user security module to 
the communication temninal. (This transfer is motivated 
by periomiance consMerations. It is more efficient to ex- 
ecute the confidentiality and/or integrity algorithms 
which use the session keys in the communteation ter- 
minal.) When the user security module is removed from 
the communbation terminal the latter is required to de- 
lete the session keys. 

[0007] The problem whch arises from the unavoida- 
ble transfer of the session keys to the conimunbation 
terminal is the following: the continuous use of the ses- 
sion keys during the session is meant to continually en- 
sure the communicating party's identity to the other par- 
ty. But if the user security module Is removed from the 
communk:ation tenninal and the latter is a rogue termi- 
nal not behaving according to the specifications the 
rogue temiinal may decide to keep the session keys 
ratiier than delete them. If this occurs then the other par- 
ty has no way of telling that the user Is no longer asso- 
ciated with the communication temninal because the lat- 
ter continues to use the session keys. An attacker in 
control of the rogue temilnai may then use communica- 
tion resources in the name of the user without the user 
knowing. This attack is also known as the rogue shell 
attack. 

[0008] It is an object of the invention to avoid said 
rogue shell attack. The object of the invention is solved 
by the invention according to the independent claims. 
The invention can be used in any mobile communcation 
network, especially in a cellular mobile communk:atipn 
network. 

The inventton applies to a situation where 

a) it is costly to perform the entity authentk:atk)n and 
key derivation procedure based on the long-temn 
key in the user security module, and, therefore, it is 
advantageous to reduce the number of times this 
procedure has to be perfonmed; 

b) full backward compatibility with communk^tion 
devbes and other entities in the communication 
system whbh do not support the new feature de- 
scribed in the invention is desired. 
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[0009] Herein: 

a) may apply when, in a mobile communications 
system, the entity authentication and l<ey derivation 
procedure for a user roaming in a visited networic 
involves signalling back to the home network. 

b) may apply when a new feature to counter the 
rogue shell attack Is Introduced In an existing mobile 
communications system such as GSM, UMTS, AN- 
SI IS-41 or a system defined by 3GPP2. 

[0010] This invention presents a new way to counter 
the rogue shell attack in a situatton where a) and, pos- 
sibly in addition, b) hold. 

[0011] Basically three approaches to deal with the 
rogue shell attack can be imagined: 

1 . Assume that most communication terminals are 
in fact personal devices of the user and that the user 
security module is relatively rarely removed and in- 
serted in other communk:ation temninals. If in such 
relatively rare cases rogue shell attacks occur one 
trusts that the attack can be detected and conse- 
quently countered by fraud control measures. 

2. Perform the entity authentication and key deriva- 
tion procedure with sufficient frequency so as to lim- 
it the lifetime of session keys and, consequently, 
limit the period during whch fraud can be committed 
through unauthorised use of the session keys. The 
frequency must, of course, be sufficiently low so as 
not to incur unbearable costs. 

3. Introduce a secondary authentication and key 
derivation procedure which is less costly to perfonm 
than the primary entity authentication and key der- 
ivation procedure. This secondary procedure Is as- 
sumed, however, to not offer the same degree of 
security as the primary procedure for which reason 
the primary procedure still needs to be perfonmed 
from time to time, but with reduced frequency! 

[0012] In mobile communcation networics, e.g. in 
GSM, a mixture of approaches 1 and 2 is applied. In 
UMTS Release'99, also a mixture of approaches 1 and 
2 is expected to be applied. 
[0013] The use of secondary authentication and key 
derivation procedures for different objects (to reduce the 
cost of the primary procedure) is known from prior art in 
different fields of technology, among them TETRA (Ter- 
restrial Trunked Radio (TETRA), Voice plus Data (V-i-O): 
Part 7: Security; Edition 2f, November 1998), from 
DECT (ETS 300175-7, DECT Common Interface, Part 
7: Security Features, European Telecommunications 
Standards Institute. 1 992) and IS-41 (TIA/EI A, PN 2991 : 
Cellular radio telecommunk:ations intersystem opera- 
tions IS-41 Rev. D; May 4 1995). They were not known 
or used in these systems, however, for the purpose of 
countering the rogue shell attack. 
[0014] Recently, the use of secondary authentication 



and key derivation procedures to counter the rogue shell 
attack in 3GPP (UMTS) and 3GPP2 systems has been 
proposed in contributions to standards bodies, cf . [Lu- 
cent] (=Lucent Technologies Inc, M. Marcovici, S. Mizlk- 

5 ovsky: Enhanced local authentication of a 3G mobile, 
TR45AHAG/00.09.12.15, Washington, DC, September 
12. 2000) and [Qualcomm] (sF Quick, J. NasielskI: Pro- 
posed security enhancement to AKA, TR45AHAG/ 
2000.06.20., Ottawa, Canada. June 20, 2000-11-23). 

10 Both solutions modify, in different ways, key material 
which results from the primary key derivation procedure 
and use the modified key material as Intermediate keys 
which are input to the secondary authentication and key 
derivatk3n procedure. 

15 

Invention 

[001 5] Functional entities supporting the new feature 
descrit)ed in the invention are called "new" here, and 
^ others not supporting it are called "old" here. 

[001 6] The principles foltowed by the invention are: 

• Introduce a secondary authentlcatk>n and key der- 
ivation procedure as in section 2.3 above 

• Minimize the changes required to existing systems 

• Re-use as much as possible protocol elements of 
the primary authentication and key derivation pro- 
cedure 

• Allow communication between okl and new entities. 
p)017] We consider two different situattons: 

• The general situation where a user with a commu- 
nication device consisting of a communk:ation ter- 
minal and a user security module communicates 
with a second party In a communk:atlons system; 

• A specif k: situation where the communications sys- 
tem is a mobile communk»tions system consisting 
of the following components: 

- a mobile station consisting of a mobile equ9>- 
ment and a user security module; 

- a base station system; 

- a visited networic node; 
• a home networic node. 

[001 8] In t>oth situations, the connmuncatk>n temninal 
is not affected by the introductton of the new feature. 
[QOI 9] In the general situation, the following hokls for 
so the solution given in the inventton: 

• the second party has a means to detemiine whether 
the user security nruxlule is old or new; this means 
need not involve the user; 

S5 • the second party signals to a new user security 
module that it is new by applying a cryptographic 
function to a parameter in the first message and 
possibly further data in the primary authentication 
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and key derivation procedure in a specific way; the 
cryptographic function may be a hash function or an 
encryption function; except for the modification of 
the parameter in the first message, the information 
fiow, message format and contents of the primary 
authentication and Icey derivation procedure may 
remain unchanged; 

• when the user security module leams that the sec- 
ond party is new it decides to use a secondary au- 
thentication and key derivation procedure; the keys 
derived in the primary procedure (with the parame- 
ter in the first message modified) are then used as 
intemiediate keys in the secondary procedure; the 
intermediate keys are not transfen^ed to the com- 
munication temnina); 

• when the user security module ieams that the sec- 
ond party is old by detecting that the first message 
In the primary authentication and key derivation pro- 
cedure was unmodified, it decides to use the keys 
derived in the primary procedure as session keys 
and transfers them to the communication terminal; 

[0020] This procedure for new user security niodules 
and new second parties to agree on the use of a sec- 
ondary authentication and key derivation procedure and 
derive Intermediate keys for use in this secondary pro- 
cedure may apply to any secondary authentk»tion and 
key derivation procedure. 

• The invention also defines the use of a particular 
secondary procedure whch best fits the principles 
of the solution stated above. 

• This partk:uiar secondary authentk»tion and key 
derivation procedure consists in a reduced version 
of the primary procedure where the information flow 
and all message formats are identical in the prinnary 
and secondary procedure, but where parts of the 
message content are substituted with pre-defined 
fixed values or other parameters, possibly derived 
by non-cryptographk: means. 

[0021] In the specific situation, in addition, the follow- 
ing holds for the solution given In the invention: 

• the base station system is not affected by the intro- 
duction of the new feature; 

• the second party is the visited network node; 

• the means for the second party to determine wheth- 
er the user security module is okl or new is a par- 
ttoular parameter sent by the home networic node; 
this parameter may be sent in response to a request 
by the visited network node for user authentrcation 
data; 

• the only niodification for a home network node re- 
quired to support the new feature is the capability 
of sending the infonnation on the type of user secu- 
rity module (old or new) in the particular parameter; 
the generation and format of user authenticatton da- 



ta remains unchanged; 

• the further data to whk:h the cryptographic function 
is possibly applied when the second party signals 
to a new user security module that it is new may be 

9 part of the user authentication data, in parttouiar a 
derived key contained in the user authentication da- 
ta; 

• the partteular secondary authentk»ition and key 
derivation procedure may involve sending part of 

10 the user authentication data containing a random 
challenge to the mobile station; the random chal- 
lenge would then be input to the secondary key der- 
ivatton procedure together with the intemrtediate 
key. 

15 

[0022] General advantages of the solution presented 
in this invention are: 

• the cost involved in frequently running a primary en- 
tity authentication and key derivation procedure is 
reduced; 

• it allows communication between old and new enti- 
ties; full backward compatibility Is provided; 

• it minimizes the changes required to existing sys- 
S5 tems; 

• It re-uses as much as possible protocol elements of 
the primary authentteation and key derivation pro- 
cedure; 

• it provides a means to modify the primary authentic 
30 cation and key derivation procedure in a simple way 

so that it can be used as a secondary procedure; 

• the communication terminal is not affected by the 
introduction of the new secondary authentication 
and key derivation procedure; 

39 • in the specific situation to which this invention ap- 
plies the mobile equipment and the base station 
system are not affected by the introduction of the 
new secondary authenticatk>n and key derivation 
procedure. 

40 

[0023] Advantages over the solution presented in 
{Quateomm]: 

• In the solution in [Quak:omm], for the purpose of 
49 backward contpatibility it is required that the home 

networic node generates different types of user au- 
thentk»tion data in real-time, depending on the type 
of visited networtc node (okl or new). This is unnec- 
essary in the solution presented here. 
90 • The solution in (Oualcomm] does not say anything 
at>out how the different entities learn whether they 
are old or new. The solution presented in this inven- 
tion provides a n^echanism for this. 

• The solution in [Qualcomm] envisages that the use 
99 of the secondary authentk»tion and key derivation 

procedure depends on support of the M€ which the 
solution presented in this invention does not. 
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[0024] Advantages over the solution presented in [Lu- 
cent]: 

• The part of the Lucent solution relying on the use of 
the anonymity Icey AK does not seem to work as s 
described in [Lucent] as it seems to rest on the as- 
sumption that AK has 128 bits whereas it has only 
48 bits in the discussed use in UMTS. Furthermore, 
the AK is not known to the visited network node. 

• if the anonymity key AK cannot be used by the vis- 
ited network node in the Lucent solution then differ- 
ent procedures to compute user authentication data 
are required to Include a so-called LAK (Intermedi- 
ate key), in this case, or if AK has to be transferred 
from the home network node, a different fonnat of 
the user authentication data is required and the in- 
terface between the visited and the home network 
node needs to be changed. This is not required in 
the solution presented here. 

• There are two alternatives in the Lucent solution for 
the secondary authentication and key derivation 
procedure. Alternative 1 1n the Lucent solution does 
not provide a security level comparable to the solu- 
tion presented in this invention as the same key IK 
continues to be used between two runs of the pri- 
mary authentication procedure. Alternative 2 in the 
Lucent solution affects both ME and base station 
system which the solution presented here does not. 

[0025] The invention contains recognising that the in- 
formation flows and message formats of the primary au- 
thentication and key derivation procedure could be 
maintained while only slightly modifying message con- 
tents to obtain the following addittonat features: 

• signalling from a new visited network node to a new 
user security module that the fomner is new; 

• providing a means for the user security module and 
the visited network node to derive intenmediate 
keys; 

• providing a secondary authentication and key deri- 
vation procedure; 

[0026] It was further recognised that 

• it is not necessary to modify the way the home net- 
wofk node generates user authentication data in or- 
der to support backward compatibility; 

• the rogue shell threat can be countered without af- 
fecting the communication temfiinal / mobile equip- 
ment and the base station system at all; 

• it is possible for the second party to signal to a new 
user security module that it is new by applying a 
cryptographic function to the first message and pos- 
sibly further data in the primary authentication and 
key derivation procedure; 



• the keys derived in the (modified) primary authenti- 
cation and key derivatton procedure can be used as 
intermediate keys In the secondary authentication 
and key derivation procedure; 

• it Is possible for the second party to signal to a new 
user security module that ft is new by applying a 
cryptographic function to the first message and pos- 
sibly further data in the primary authentication and 
key derivation procedure. 

[0027] Further advantages of the invention appear 
from the claims cmd the foltowing desciption of an ex- 
ample for canrying out the invention. 

Figure 1 shows a primary entity authentication and 
key derivation procedure, ^mbined with a 
secondary authentication and and key der- 
ivation procedure (local key derivation pro- 
cedure) 

Figure 2 shows a local key derivation procedure not 
combined with a primary entity authentica- 
tion and key derivation procedure 

[0028] In the example for canying out the invention , 
the feasibility of the invention is demonstrated by apply- 
ing it to the Universal Mobile Telecommunications Sys- 
tem (UMTS), as standardised by 3GPP. For the security 
architecture, compare [SecArch=3G TS 33.102 3rd 
Generation Partnership Project; Technical Specification 
Group Services and System Aspects; 3G Security; Se- 
curity Architecture (Release 1999), version 3.6.0, Octo- 
ber 2000]. 

[0029] In the description of the example for canying 
out the invention , the spectalised tenrtinoiogy known 
from UMTS is used because, othenwise, it may be more 
difficult to see the impact of the Invention In the context 
of UMTS for sonnebody comparing the invention with the 
cun'ent UMTS specifk:ations in{SecArch]. 
[0030] The temiinology known from UMTS relates to 
the more general tenninoiogy used in the description of 
this invention above as follows: 
[0031] Terminology used in the description of this in- 
vention Terminology used in UMTS 

visited networtc node -» VLR^GSN 
home networic node HLR/AuC 
base station system -> RNC 
communk:ation devk:e mobile station (MS) 
mobile equipment mobile equipment (ME) 
user security module USIM 
primary authentication and key derivation proce- 
dure -> UMTS authentication and key agreement 
procedure (UMTS AKA) 

secondary authentication and key derivation proce- 
dure local key derivatton procedure (not known 
fromfSecAich]) 

intermediate key master key (not known from 
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[SecArch]) 

authentication data authentication vector (AV) 
MAP is a protocol used in UMTS to carry authenti- 
cation related Information between the HLFVAuC 
and the VLR/SGSN 

MAC stands for Message Authentication Code. 

Detailed description of an example for carrying out the 
invention 

[0032] There are four main elements to the solution 
presented in this invention: 

• a mechanism to signal from the HLR/AuC to the 
VLR/SGSN that the USIM supports the local au- 
thentication procedure; 

a mechanism to signal from the VLR/SGSN to the 
USIM that the VLR/SGSN is running the local key 
derivation procedure: this is based on a specific 
modification by the VLR/SGSN of the user authen- 
tication request in a UMTS AKA which the USIM can 
recognise; 

• a procedure to derive the cipher and integrity mas- 
ter Iceys CMK and IMK from the pemianent Icey K: 
this is realised using the UMTS AKA; 

- a procedure to derive the cipher and integrity ses- 
sion keys CSK and ISK from the cipher and integrity 
master iceys CMK and IMK: this is realised using a 
stripped down version of the UMTSAKA. 

[0033] These four elements are described In detail In 
the following. Their realisation is based on the following 
Ideas: 

Mechanism to signal from the HLR/AuC to the VLR/ 
SGSN that the USIM supports the local key deriva- 
tion procedure 

A new IHLR/AuC always includes a flag in its re- 
sponses to Send Authentication Info MAP messag- 
es whk:h indicates whether the USIM is new or old. 
Backwards compatibility is achieved by using well- 
known techniques commonly used to introduce ex- 
tensions to MAP. 

No further changes to the HLR/AuC are required. 
In particular, the process of generating authenttoa- 
tion vectors is as specified in [SecArch]. 

Mechanism to signal from the VLR/SGSN to the 
USIM that the VLR/SGSN supports the local au- 
thenticatkH) procedure 

New VLRs/SGSNs and new USIMs have a stand- 
ardised encryption function Enc which operates on 
64 bit btocks and has a 128 bit key. 



[0034] When a new VLR/SGSN has received (togeth- 
er with an authentication vector) the indk:atlon from the 
HLR/AuC that the USIM is new, and it wants to use the 
local key derivation procedure then it sends a nfK>dlf led 
5 User Authentication Request message containing 
(RAND, AUTtT), cf . [SecArch. section 6.3.3]. AUTN*6\U 
fers from AUTN in that the MAC-parameter is encrypted 
with CK, i.e. 

AUnr^SQNB AKW AMFW EnCa^MACy 

[0035] When a new USIM receives the parameters 
contained in the User Authentication Request message 
t5 It proceeds as specified in [SecArch, section 6.3.3] to 
compute AK. MAC. RES. CK, IK. The USIM then com- 
pares the computed MAC with the received MAC. 

• When the computed MAC and the received MAC 
20 match the USIM continues as specified in [Sec/Krch, 

section 6.3.3], and no local key derivation proce- 
dure is used. In partk:ular,<)K and IK are transferred 
to the ME after successful authentication. 

• When the computed MAC and the received MAC 
25 do not match the USIM encrypts thecomputed MAC 

with CK and compares It to the received MAC. 
When there is a match now, the USIM detenmlnes 
that the local key derivation procedure is run and 
proceeds as described further below. 
30 • When there is still no match the USIM reports au- 
thentication failure to the ME. 

[0036] Procedure to derive the integrity master key 
IMK from the permanent key K 

95 

• When the USIM has detenmined that the local key 
derivation procedure is run CK and IK are not trans- 
fen'ed to the ME, but remain in the USIM. CK be- 
comes the cipher master key CMK and IK becomes 

40 the integrity master key IMK. Cipher and integrity 
session keys CSK and ISK are derived from CMK 
and IMK according to the procedure described k>e- 
k)w. Then the authentication procedure is continued 
as specified in [SecArch]. 

45 • When the VLR/SGSN initiated a kx»l key derivation 
procedure and receives the correct RES it proceeds 
to set CMK :=CK and IMK:= IK. 

[0037] Procedure to derive the cipher and integrity 
so session keys CSK and ISK from the cipher and integrity 
master keys CMK and IMK (local key derivation proce- 
dure) 

[0038] The purpose of the local key derivation is to 
prove the presence of the USIM by having the USIM de- 
55 rive new session keys. 

[0039] Both new USIMs and new VLR/SGSNs pos- 
sess a standardised key derivation function F. 
[0040] Two«ases need to be distinguished: 
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• Case A: derivation of cipher and integrity session 
keys for the first time after the establishment of ci- 
pher and integrity master keys; 

• Case B: derivation of cipher and integrity session 
keys for the second or later times after the estab- 
lishment of cipher and integrity master keys. 

Case A: 

[0041] 

• the USIM and the VLR/SGSN compute CSK = F 
(CMK; RAND) and iSK = F(IMK: RAND) where 
RAND is the parameter contained in the User Au- 
thentication Request message and used to derive 
CMK and \MK according to the description above. 
F is a key derivation functton , i.e. a cryptographic 
function with special properties suitable to derive 
cryptographic new keys from existing cryptographic 
keys. 

• The USiM then transfers CSK and ISK to the ME. 
The VLR/SGSN transfers CSK and ISK to the RNC 
in the security mode set-up procedure. The ME and 
the RNC contin ue as specified for a run of the UMTS 
AKAin[SecArchl. 

Case B: 

[0042] 

• Whenever the VLR/SGSN detemiines that new 
CSK and ISK need to be derived and the lifetimes 
of CMK and /M/Chave not expired it sends a modi- 
fied User Authentication Request message to the 
MS containing (RAND, AUTN-L). RAND is a nonce 
generated by the VLR/SGSN and AUTN-L is equal 
to a pre-defined fixed value to signal to the USIM 
that a local key derivation procedure is run, and not 
a UMTS AKA. 

• The ME cannot distinguish a run of the k>cal key 
derivation procedure from a run of the UMTS AKA 
and t)ehaves accordingly during the entire proce- 
dure. 

• When the USIM detects that the received AUTN 
equals the fixed value AUTN-L and it determines 
that the lifetimes of CMK and tMK have not expired 
it returns a RES-L equal to a pre-defined fixed value 
and computes the session keys as CSK = F(CMK; 
RAND) and ISK== F(IMK; RAND). 

• The USIM then transfers CSK and ISK to the ME. 

• After receiving the correct response RES-L from the 
MS, the VLR/SGSN computes the session keys as 
CSK = F(CMK; RAND) and ISK = F(IMK; RAND) 
and transfers CSK and ISK to the RNC in the secu- 
rity mode set-up procedure. 

• When the USIM detennines that the lifetimes of 
CMK and IMK have expired It sends a RES equal 
to a different pre-defined fixed value back to the 



VLR/SGSN. 

• When the lifetimes of CMK and IMK have expired 
the VLR/SGSN inititates a mn of the UMTS AKA to 
establish new CMK and IMK. 

3 

Claims 

1 . Method for authentcation in a mobile communica- 
to tion system comprising a mobile commun Nation 
networic 

(VLR/SGSN/HLRmNC...) and mobile stations (MS) 
wherein the network provides a service to a mobile 
station (MS) after authentication of the mobile sta- 
15 tion 

wherein the mobile station (MS) comprises a port- 
able module <USiM) 

wherein the mobile statton (MS) comprises a mobile 
equipment (ME) that is able to communk:ate with 
20 the network and that is able to communbate with 
the portable module (USIM) 
wherein the network sends random data (RAND) to 
the mobile station <MS) 

wherein the networic (AUC, SGSN) calculates re- 
25 sponse data (XRES(i)) and key data (CK, IK) at 
least from the random data (RAND) and/or from a 
key (K) stored In the networic <AUC/HLR) 
wherein the portable module <USiM) of the mobile 
station (MS) cateulates response data (R£S(i)) and 
30 key data (CK, IK) at least from the random data 
(RAND) and/or from a key (K) stored in the portable 
module (USIM) 

wherein the portable module (USIM) stores the cal- 
culated key data (CK, IK) 
35 wherein the portable module (USIM) transmits the 
response data (RES) to the mobile equipment (ME) 
whteh (ME) sends response data (RES) to the net- 
work 

wherein the portable module cak:ulates further key 
40 data (CSK, ISK) from random data (RAND) and/or 
from the catoulated key data<CK, IK) 
wherein the portable nrK>dule transmits further key 
data (CSK, ISK) to the mobile equipment (ME) to 
enable contmunk^ation between the mobile equip- 
45 ment (ME) and the networic for providing a service 
to the mobile 8tatk)n (MS) 
wherein the networic cak:ulates further key data 
(CSK, ISK) from random data (RAND) and/or from 
the <:ak:ulated key data (CK, IK) to enable oommu- 
50 nication between the network for providing a service 
to the mobile statton (MS) and the mobile equip- 
ment (ME). 

Method according to claim 1 , charaeterbed in 
that the networic cx>mpares at least the response 
55 data (RES) from the mobile equipment (ME) and the 
response data (XRES) cakxilated in the networic 
during the authenticatk>n procedure. 
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14 



questing calculating key data (CK, IK) 
wherein the command data (AUTN*(I)) Is under- 
stood by a portable module (USIM), that is able to 
calculate further key data (CSK, ISK). as a conv 
5 mand to calculate further key data (CSK, ISK) 

wherein the comnnand data (AUTN(i)) Is understood 
by a portable module (USIM) that is not able to cal- 
culate further key data (CSK. ISK) as a command 
to cateulate key data (CK, IK) 

10 

8. Method according to any of the preceding claims, 
characterized In that 

the network recognises that the portable module 
(USIM) Is connected to the mobile equipment (ME) 
15 by sending challenge data to the mobile station re- 
quiring answer data, calculated using further key 
data, from the mobile station and connparing the re- 
sponse data transmitted from the mobile station 
with response data calculated in the network. 

20 

9. Method according to any of the preceding claims, 
characterized In that 

the portable module (USIM) transfers the key data 
(CK, IK) to the mobile equipment (ME) 
25 if the portable module (USIM) is not able tocalciilate 
further key data (CSK. tSK) and that the key data 
(CK, IK) is used forcommunication between the mo- 
bile equipment (ME) and the network. 



2. Method according to any of the preceding claims, 
characterized In that 

for checking whether the portable module is con- 
nected to the mobile equipment a second authenti* 
cation procedure is executed at a later time than the 
authentk»tlon procedure of claim 1 , 
wherein the network sends random data (RAND) to 
the mobile station (MS) 

wherein the portable module calculates new further 
key data (CSK, ISK) from this random data (RAND) 
and/or from the stored key data (CK, IK) that was 
calculated in the authentication procedure of claim 
1. 

wherein the network also calculates the new further 
key data (CSK, ISK) from this random data (RAND) 
and/or from the stored key data (CK, IK) that was 
calculated in the authentication procedure of claim 
1, 

wherein the new further key data (CSK, ISK) is used 
for communksation between the mobile equipment 
(ME) and the network (RNC/SGSN). 

3. Method according to any of the preceding claims 2 
or 3, 

characterized in that 

the network does not compare the response data 
(RES) from the mobile equipment (ME) and the re- 
sponse data (XRES) calculated in the network dur- 
ing the second authentication procedure. 

4. Method according to any of the preceding claims, 
characterized In that 

in the mobile station only the portable module 
(USIM) stores the key data (CK, IK) and that the 
portable module (USIM) does not transfer the key 
data (CK, IK) to the mobile equipment (ME). 

5. Method according to any of the preceding claims, 
characterized in that 

the portable module (USIM) transfers further key 
data tCSK, ISK) data calculated from key data (CK, 
IK) to the mobile equipment only If it receh/es com- 
mand data (AUTN*(0) from a nelwortc element indi- 
cating that the network is able to cateulate the said 
further key data. 



30 10. Portable module ^USIM, SIM) that is designed for 
use in a mobile equipment (ME) for mobile network 
(UI^.^DMA, GSM) 



with a receiving devk>e for receiving mndom da- 
ds ta (RAND) and other data (AUTN*<0 etc) via the 
mobile equipment (ME) 
• with a sending devbe for sending via the nnobile 
equipment (ME) response data (RES) as a re- 
sponse to the random data (RAND) 
40 . with a calculating device that is designed for 
caknitating response data (RES= RES(i)) as a 
response to the received random data (RAND) 
and f orcalulating key data<IK, CK) from at least 
the random data (RAND) and/or a key <<K) 
45 stored in the portable module (USIM) 



6. Method according to claim 6, characterized In that 
a network element (SGSN, AUC, VLR) only trans- 
fers command data (AUTN*(i)) to the portable card 
(USIM) if the network (HLR) has detected that the so 
portable card (USIM) is able to calculate the said 
further key data (CSK, ISK). 

7. Method according to any of the preceding claims, 
characterized In that S5 
the command data (AUTN*(i)) a network element 
(SGSN, AUC, VLR) transfers to the portable card is 
sent In the fonm of command data (AUTN<i)) re- 



wherein the portable module (USIM, SIM) further 
comprises acalculating device that is designed for 
cak:ulating further key data (CSK. ISK) from at least 
the key data (CK, IK) and/or the random data 
<RAND). 

11. Portable module according to claim 11 , 
characterized in that 

the portable module (USIM, 'SIM) is designed for 
transmitting only the further key data<CSK, ISK) to 
the mobile equipment (ME), if command data 
(AUTN*(i)) recehred with random data (RAND) indl- 
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cates that the network is able to calculate the further 
key data (CSK. ISK). 

12. Portable module according to any of the preceding 
claims 11-12, 

characterized In that 

the portable module (USIIM, SIM) is designed for 
transmitting only key data (CK. IK) to the nnobile 
equipment (ME), If command data (AUTN(I)) re- 
ceived with random data (RAND) indicates that the 
network is not able to calculate the further key data 
(CSK, ISK). 

13. Portable module according to any of the preceding 
claims 11-13, 

characterized In that 

the portable module (USIM, SIM) is designed for ex- 
ecuting a second authentication procedure, 
receiving new random data (RAND) from the net- 
work via the mobile station (MS) 
calculating new further key data (CSK, ISK) from 
this random data (RAND) and/or from the calculat- 
ed key data (CK, IK) 

transmitting new further key data (CSK, ISK) to the 
mobile equipment (ME) for enabling the mobile 
equipment (ME) to use new further key data (CSK, 
ISK) for communication between the mobile equip- 
ment (ME) and the network (RNC/SGSN). 

14. Network element (AUC, VLR, SGSN) of a mobile 
communication network 

- with a sending device for sending command da- 
ta (AUTN*(l)) and random data (RAND) to a 
mobile station (MS) for starting an authentca- 
tion procedure 

- with a calculation device for calculating re- 
sponse data (XRES(i)) that the network ele- 
ment expects to receive as a response (RES) 
from the mobile station (MS) 

• with a calculation device for cateulating key da- 
ta (IK, CK) from at least the random data and a 
key (K) stored in the network element (VLR, 
SGSN, AUC, HLR) 

- with a calculation device for calculating further 
key data (ISK, CSK) from at least the random 
data (RAND) and/or the key data (IK, CK) 
stored in the network element (VLR, SGSN, 
AUC. HLR) 

15. Network (SGSN, VLR, AUC) element according to 
claim 15, 

characterized In that it comprises 
means for receiving from a home location register 
information stating whether the portable card 
(USIM) is able to calculate the said further key data 
(CSK. ISK). 



16. Network (SGSN, VLR. AUC) element according to 
claim 15 or 16, 

characterized in that 

it communicates with the mobile equipment using 
5 the key data (IK, CK) after detection that the porta- 
ble card (USIM) is not able to cak»jlate the said fur- 
ther key data (CSK, ISK). 

17. Network (SGSN. VLR. AUC) element according to 
10 claim 15 or 16 or 17, 

characterized In that 

It communicates with the mobile equipment using 
the further key data (ISK, -CSK) after detection that 
the portabiecard (USIM) is abletocak:ulatethesakJ 
15 further key data (CSK. ISK). 

18. Network (SGSN, VLR, AUC) element according to 
claim 15 or 1 6 or 1 7 or 1 8, 

characterized in that 

20 It calculates conrwnand data < AUTN*{i)) after detec- 
tion that the portablC'Card (USIM) is able to calcu- 
late the said further key data (CSK, ISK) from com- 
mand data (AUTN(i)) which it sends In case of de- 
tectbn that the portable card(USIM) is not able to 

25 cateuiate the said further key data.(CSK. (SK). 

19. Network (SGSN, VLR, AUC) element according to 
claim IS or 16 or 17 or 16, 

characterized in that 

30 it cateulates command data (AUTN*(i)) after detec- 
tion that the portable card (USIM) is able to calcu- 
late the said further key data (CSK. ISK) from com- 
mand data (AUTN(i)) which it sends in case of de- 
tection that the portable card (USIM) is not able to 

35 calculate the said further key data (CSK, ISK). 



40 
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modified UMTS AKA supporting local key derivation: 



MS 



VLR/SGSN 



HE/HLR 



Distribution of 
audienti cation 
vectors fioniHE 
toSN 



< 



Auihentioatim data request 



Generate audientication 
vectofsAV(l..n) 



Authentication data response 
AV(l..n)in>pc 



Store audiezitication vectois 



Sded audientication vector AV(iX 



User authentication request 
RAND(i)||AUIW*(i) 



Verify AUm*fi) 
Compute RES(i) 



UserauOientication response 
RESCO 



> 



J ConTBreRES(OandXRES(i;) 



Compute OCCi) and IK(i)» Select CKCO and DCO), 

sctClVlK*=CKa)andIMK<4K(!) 8etCMK»CK6)andIMK-IKa) 

derive CSK«F(CMK;RAND) derive CSK»F(OiI6RAND) 

defiveISK»F(IMKaura^ derive lSK«FaMIC;RAND) J 



Audienticati(Hi and 
keyestablidunent 



The parameter "Type" indicates whether the USIM is old or new. 

We have AUTTV* = SQN e AK || AMF \\ EnccK(MAC), 

CMK and IMK are the cipher and integrity master keys, respectively. 
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local key derivation procedure: 



USIM VLR/SOSN 

User authentication request 
RANDIIAUTN-L 



User authentication response 
RES4. 



Derive CSK"F(CMK;RAND) 




Derive CSK'^F(CMKa(AND) 


Derive ISK<»F(IMK;RAND) 




Derive ISK"F(IMK;RAND) 



Fig. 2 
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